Lucene search
K

33 matches found

Positive Technologies
Positive Technologies
added 2026/06/26 12:0 a.m.12 views

PT-2026-53024

Name of the Vulnerable Software and Affected Versions regclient affected versions not specified Description Authentication credentials for a registry may be leaked to external servers. This occurs when a malicious registry server, a malicious blob store, or a registry that fails to restrict...

6.8CVSS5.9AI score
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in docker.io

In Docker versions before 9.03.15 and 20.10.3, there is a vulnerability in which pulling an intentionally malformed Docker image manifest causes the dockerd daemon to crash. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing...

6.5CVSS6.9AI score0.03287EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.10 views

RHCOS 4 : OpenShift Container Platform 4.4.3 cri-o (RHSA-2020:1937)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:1937 advisory. - containers/image: Container images read entire image manifest into memory CVE-2020-1702 - proglottis/gpgme: Use-after-free in GPGM...

7.5CVSS5.8AI score0.05071EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 7 : buildah-1.11.6-11.el7 (AXSA:2020-066:02)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-066:02 advisory. buildah: Crafted input tar file may lead to local file overwrite during image build process CVE-2020-10696 containers/image: Container images read...

9.3CVSS7.9AI score0.02603EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-0271

Malicious code in bioql PyPI...

6.5CVSS7.1AI score0.03287EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.52 views

RHEL 7 : docker (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - docker: IPv6 router advertisements allow for MitM attacks CVE-2020-13401 - docker: cli leaks private...

7.4AI score0.03653EPSS
Exploits1References7
Amazon
Amazon
added 2023/10/17 12:0 a.m.3 views

Medium: docker

Issue Overview: A flaw was found in the userns-remap feature of Docker. The root user in the remapped namespace can modify files under /var/lib/docker/, leading to possible privilege escalation to the root user in the host. The highest threat from this vulnerability is to data integrity...

6.8CVSS7AI score0.03287EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:46 a.m.4 views

SUSE CVE-2021-21285

In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing...

5CVSS7.2AI score0.03287EPSS
Exploits0References31
Amazon
Amazon
added 2021/11/18 12:0 a.m.33 views

Medium: docker

Issue Overview: A flaw was found in the userns-remap feature of Docker. The root user in the remapped namespace can modify files under /var/lib/docker/, leading to possible privilege escalation to the root user in the host. The highest threat from this vulnerability is to data integrity...

6.8CVSS7.3AI score0.03287EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/11/15 12:0 a.m.35 views

Amazon Linux AMI : docker (ALAS-2021-1550)

The version of docker installed on the remote host is prior to 20.10.7-2.69. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2021-1550 advisory. A flaw was found in the userns-remap feature of Docker. The root user in the remapped namespace can modify files under...

6.8CVSS6.9AI score0.03287EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/06/17 12:0 a.m.28 views

openSUSE: Security Advisory for containerd, (openSUSE-SU-2021:0878-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.5CVSS7.9AI score0.06604EPSS
Exploits0References2
OSV
OSV
added 2021/06/11 8:45 a.m.6 views

SUSE-SU-2021:1954-1 Security update for containerd, docker, runc

This update for containerd, docker, runc fixes the following issues: Docker was updated to 20.10.6-ce bsc1184768, bsc1182947, bsc1181594 Switch version to use -ce suffix rather than ce to avoid confusing other tools bsc1182476. CVE-2021-21284: Fixed a potential privilege escalation when the root...

8.5CVSS7.5AI score0.06604EPSS
Exploits0References22
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2021:0445-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.8AI score0.03287EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.9 views

The vulnerability of the dockerd daemon, a deployment and application management automation tool in Docker-enabled environments, relates to a resource consumption control mechanism error. This vulnerability allows attackers to trigger service failures.

The vulnerability of the dockerd daemon, a tool for automating the deployment and management of applications in Docker containerized environments, is related to improper handling of the image manifest file. Exploiting this vulnerability allows an attacker to cause service interruptions...

6.5CVSS6.8AI score0.03287EPSS
Exploits0References10Affected Software5
OPENSUSE Linux
OPENSUSE Linux
added 2021/02/12 12:0 a.m.59 views

Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (important)

openSUSE Security Update: Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork Announcement ID: openSUSE-SU-2021:0278-1 Rating: important References: 1174075 1176708 1178801 1178969 1180243 1180401 1181730 1181732 Cross-References: CVE-2020-15257 CVE-2021-21284...

7.8CVSS6.7AI score0.03287EPSS
Exploits4References8
NVD
NVD
added 2021/02/02 6:15 p.m.18 views

CVE-2021-21285

In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing...

6.5CVSS0.03287EPSS
Exploits0References8
Prion
Prion
added 2021/02/02 6:15 p.m.26 views

Code injection

In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing...

4.3CVSS6.4AI score0.03287EPSS
Exploits0References8Affected Software3
UbuntuCve
UbuntuCve
added 2021/02/02 6:15 p.m.29 views

CVE-2021-21285

In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing...

6.5CVSS6.9AI score0.03287EPSS
Exploits0References8
OSV
OSV
added 2021/02/02 6:15 p.m.1 views

UBUNTU-CVE-2021-21285

In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing...

6.5CVSS5.8AI score0.03287EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2021/02/02 5:55 p.m.32 views

CVE-2021-21285

In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing...

6.5CVSS7.3AI score0.03287EPSS
Exploits0
Rows per page
Query Builder